Citrix continues to empower companies to have better and more secure access to enterprise resources. Now, it has expanded its capabilities and enhanced user experience, efficiency, and security by deploying modern authentication integrations for Citrix Workspace via SAML 2.0.
What is SAML 2.0?
Security Assertion Markup Language (SAML) is an XML-based open standard for transferring identity data between two parties: an identity provider and a service provider. The standard has been around since 2002 but has evolved and improved. SAML 2.0 makes the service provider the party that issues the authentication request rather than the single sign-on (SSO) profiles being initiated by the IdP, as in SAML 1.1.
Why is this so exciting?
Citrix Workspace App has been announced and will shortly be released, providing access to Citrix Apps (XenApp), Citrix Desktops (XenDesktop), Citrix Secure Collaboration (ShareFile) and SaaS applications from a single pane of glass.
To deliver secure access to apps, businesses need a simpler way to control user access. SAML 2.0 enables a centralized location to implement multi-factor authentication (MFA) and allows organizations to simplify user requirements for logins while increasing security.
2020: A tipping point for remote work
- SECURITY INFORMATION. Whenever you download a file over the Internet, there is always a risk that it will contain a security threat (a virus or a program that can damage your computer and the data stored on it).
- With Citrix Secure Internet Access, you get a full cloud-delivered security stack with global reach. So you can protect all users, in any location, for every application—without the complexities and expense of datacenter-based security. Secure access to web and SaaS applications.
The rapid move to remote work has been difficult for businesses that rely on perimeter-based security practices. This approach to security has been around for a long time (think castles, surrounded by walls and moats).
In the digital arena, we deployed similar protections via firewalls that acted as a wall or moat. But people need access to apps and data at all times, no matter where they are. VPNs let people in, but once behind the wall, users had implicit trust. They could go anywhere inside the perimeter. This implicit trust approach allowed bad actors to navigate to sensitive or critical infrastructure once inside.
It turns out, the No. 1 way a cybercriminal gains access to an organization’s assets is through a user’s credential-based login. A zero trust framework requires MFA from login through every step.
Citrix is a leader in empowering people and enterprises to achieve secure access to enterprise applications and is constantly innovating. Citrix Secure Workspace Access provides a zero trust approach to securely access corporate web, SaaS, and virtual applications. With advanced security controls for managed, unmanaged, and BYO devices, it’s ideal for IT and employees alike.
That’s why we partnered with Citrix. At TraitWare, we believe in modern and pioneering solutions that enhance user experience and increase security for the enterprise — all in alignment with the Citrix vision.
Multi-Factor Authentication (MFA) as Zero Trust Access Control
TraitWare believes MFA should be native to the technology and simple for the user. Citrix has announced a public preview and support of SAML 2.0 open standard for integrating with any identity provider of choice. TraitWare is a Citrix Ready Partner, and our passwordless MFA solution is one of the first few to have completed the validation of this feature with Citrix Workspace deployment
MFA is a requirement today and is the first control you should put in place for optimal zero trust enterprise security. You can deploy TraitWare’s passwordless MFA login in minutes because MFA is inherent in the solution. TraitWare provides the user with a passworldless login to Citrix Workspace in three touches, from a device they already carry. TraitWare is already part of the Citrix Ready Workspace Security Program, and we can enable use for both on-prem and cloud deployments.
Benefits of SAML Authentication
- Improved User Experience — Users sign in once to access multiple applications with single sign-on (SSO). This enables faster authentication and eliminates the need to remember multiple login credentials for each application.
- Increased Security — SAML provides a single point of authentication, which happens at a secure identity provider. Then, SAML transfers the identity information to the service providers. This form of authentication ensures that credentials are only sent directly to the IdP.
- Reduced Cost — With SAML, companies don’t have to maintain account information across multiple services. The identity provider bears this burden.
How does it work?
With Citrix and TraitWare, instead of logging in to each application with separate credentials, you’ll log into Citrix Workspace and SSO into your apps and desktops in just three touches, without having to remember a username and password again!
Simply navigate to your Citrix Workspace login page. There, you’ll be presented with the TraitWare QR screen. Open the TraitWare app on your mobile device, click the account, then confirm your identity with a biometric like your fingerprint. Use the camera in the app to scan the QR code and you’ve logged in to your Citrix Workspace.
The magic that happens in the background is SAML, which is built into the technology, allowing a simple, secure, plug-and-play login experience.
For more on how you can maximize security for your company and vastly improve your user experience, contact us any time, and check out our video to see how TraitWare passwordless login works.
FORT LAUDERDALE, Fla.--(BUSINESS WIRE)--The rapid move to the cloud and remote work prompted by the COVID-19 pandemic are creating dynamic work environments that promise to drive new levels of productivity and innovation. But they have also opened the door to a host of new security and reliability concerns and sparked a significant increase in cyberattacks. The Federal Bureau of Investigation has reported a 400% increase in the number of cyberattack complaints since the pandemic began and more workers have had to access corporate resources remotely. To help companies defend themselves, Citrix® Systems, Inc. (NASDAQ:CTXS) is introducing two new workspace security solutions designed to secure access and protect applications wherever work needs to get done.
“Organizations are struggling with solutions designed for defending static perimeters in today’s dynamic enterprise environments, and there is a critical need for a new approach,” said John Grady, cybersecurity analyst at independent research firm ESG. “Organizations expect improved security, performance, and efficiency through solutions that provide centralized management and distributed enforcement across the entire environment.”
A Unified Approach
Citrix delivers on this through an application-centric approach that starts with the digital workspace. In a single solution, Citrix combines a full cloud-delivered security stack integrated with identity-aware Zero Trust Network Access (ZTNA) and an application-aware SD-WAN that allows companies to deliver cloud and Internet-based applications securely with high performance and reliability across work environments.
With the two new secure access offerings announced today, companies can accelerate their journey to a Secure Access Services Edge (SASE) and future proof their security investments:
Citrix Secure Internet Access - A comprehensive, global cloud security service that addresses the security requirements of modern enterprises. This includes secure web gateway, next-generation firewall, cloud access security broker (CASB), DLP, sandboxing and AI-driven attack detection.
Citrix Secure Workspace Access – A VPN-less solution that delivers zero trust access to corporate web and SaaS applications accessed from managed and BYO devices.
Complemented by Citrix SD-WAN, the solutions – which can be purchased and used separately or together - also plug and play with third-party SD-WAN infrastructure, enabling companies to maximize their existing investments.
“Modern enterprises require an intelligent approach to workspace security that protects employees, following the Zero Trust model, without getting in the way of their experience,” said Fermin Serna, Chief Information Security Office, Citrix. “And that is what Citrix digital workspace security solutions are uniquely designed to deliver.”
A recent survey of IT decision makers conducted by Pulse and Citrix, confirms this notion. Of 100 executives and managers polled in North America, Europe, the Middle East, Africa and the Asia Pacific region, polled, 97 percent cited employee experience as a key influence on their security strategy. And 75 percent said they are looking to improve the user experience through their design and execution.
In embracing Citrix’s approach to security, companies can:
- Enhance security and productivity through identity-aware, zero trust access to all cloud and internet-based applications and virtual desktops.
- Leverage machine learning and artificial intelligence to provide real-time insights into user behavior and automate the process of preventing cybersecurity breaches - all while maintaining a reliable digital workspace experience for employees.
- Identify specific security incidents, atypical activity and policy violations using built-in forensics and detailed search into all traffic and user behavior.
- Protect against all threats, everywhere leveraging more than 100 global points-of-presence, powered by over 10 threat intelligence engines.
- Provide full coverage for all popular Cloud and SaaS properties, devices and operating systems, leaving no gap for access security coverage.
- Deliver consistently fast application performance regardless of network availability with built-in SD-WAN, application optimization and peering with thousands of SaaS services.
And many are on the path to doing so.
“We are adopting more of the public cloud (IaaS, SaaS and hosted Apps), and we need resilient and secure channels that allow us to access them in an innovative and integrated way and ensure a consistent user experience,” said Sriram Sitaraman, Chief Information Officer, Synopsys. “With Citrix® Workspace™, we have started to move beyond traditional VPN solutions and now provide our employees and partners with zero trust and secure access to their infrastructure on corporate managed or BYO devices. And we can do it all within a single pane of glass, while maintaining a superior employee experience, which is very appealing.”
Citrix builds the secure, unified digital workspace technology that helps organizations deliver a consistent, secure and reliable experience that empowers people to do their best work, wherever work needs to get done. Click here to learn more about the company’s solutions to secure, manage, and monitor diverse technologies in complex cloud environments and the value they can deliver.
About Citrix
Citrix Secure Internet
Citrix (NASDAQ: CTXS) builds the secure, unified digital workspace technology that helps organizations unlock human potential and deliver a consistent workspace experience wherever work needs to get done. With Citrix, users get a seamless work experience and IT has a unified platform to secure, manage, and monitor diverse technologies in complex cloud environments.
For Citrix Investors:
Citrix Workspace Single Sign On
This release contains forward-looking statements which are made pursuant to the safe harbor provisions of Section 27A of the Securities Act of 1933 and of Section 21E of the Securities Exchange Act of 1934. The forward-looking statements in this release do not constitute guarantees of future performance. Those statements involve a number of factors that could cause actual results to differ materially, including risks associated with the impact of the global economy and uncertainty in the IT spending environment, revenue growth and recognition of revenue, products and services, their development and distribution, product demand and pipeline, economic and competitive factors, the Company's key strategic relationships, acquisition and related integration risks as well as other risks detailed in the Company's filings with the Securities and Exchange Commission. Citrix assumes no obligation to update any forward-looking information contained in this press release or with respect to the announcements described herein. The development, release and timing of any features or functionality described for our products remains at our sole discretion and is subject to change without notice or consultation. The information provided is for informational purposes only and is not a commitment, promise or legal obligation to deliver any material, code or functionality and should not be relied upon in making purchasing decisions or incorporated into any contract.
Citrix Access Control
© 2020 Citrix Systems, Inc. Citrix, the Citrix logo, and other marks appearing herein are the property of Citrix Systems, Inc. and may be registered with the U.S. Patent and Trademark Office and in other countries. All other marks are the property of their respective owners.